CVE-2009-4537

Linux Kernel < 2.6.32.3 - Denial of Service via Crafted Ethernet Frame Size in r8169 Driver

Title source: llm
STIX 2.1

Description

drivers/net/r8169.c in the r8169 driver in the Linux kernel 2.6.32.3 and earlier does not properly check the size of an Ethernet frame that exceeds the MTU, which allows remote attackers to (1) cause a denial of service (temporary network outage) via a packet with a crafted size, in conjunction with certain packets containing A characters and certain packets containing E characters; or (2) cause a denial of service (system crash) via a packet with a crafted size, in conjunction with certain packets containing '\0' characters, related to the value of the status register and erroneous behavior associated with the RxMaxSize register. NOTE: this vulnerability exists because of an incorrect fix for CVE-2009-1389.

References (30)

Core 30
Core References
Issue Tracking, Third Party Advisory x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=550907
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/37521
Mailing List, Third Party Advisory vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2010-07/msg00006.html
Third Party Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2010-0111.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1023419
Third Party Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2010-0053.html
Mailing List, Third Party Advisory mailing-list x_refsource_mlist
http://marc.info/?l=linux-netdev&m=126202972828626&w=2
Third Party Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2010-0019.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/40645
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/55647
Mailing List, Third Party Advisory mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2009/12/28/1
Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035159.html
Mailing List, Third Party Advisory mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2009/12/29/2
Third Party Advisory vendor-advisory x_refsource_suse
http://www.novell.com/linux/security/advisories/2010_23_kernel.html
Third Party Advisory vendor-advisory x_refsource_redhat
https://rhn.redhat.com/errata/RHSA-2010-0095.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/39742
Mailing List, Third Party Advisory mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2009/12/31/1
Third Party Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2010-0020.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/38031
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/38610
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2010/dsa-2053
Third Party Advisory x_refsource_misc
http://twitter.com/dakami/statuses/7104238406
Mailing List, Third Party Advisory x_refsource_confirm
http://marc.info/?t=126202986900002&r=1&w=2
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/39830
Third Party Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2010-0041.html
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2010/1857

Scores

EPSS 0.0589
EPSS Percentile 92.4%

Details

CWE
CWE-20
Status published
Products (2)
debian/debian_linux 5.0
linux/linux_kernel < 2.6.32.3
Published Jan 12, 2010
Tracked Since Feb 18, 2026